The measurement metrics doc is one of the mandatory documents at the time of ISO27001 audit. Measurement metrics is to check the effectiveness of the controls...
I have a question. How do you rate the six points on the backup process? As I know that quantitative measurement is mandatory and it is for control and monitor...
Dear all, My name is Chelsia. I am an industrial engineering student who are cureently composing my final year paper about gap-handling priority in aiming ISO...
Hi Chelsia, The gap handling priority depends on factors like the nature of business of the company, its environment, etc. Different industries have different...
Hi, Preliminary thoughts - When you say "gap", you must first have an understanding of "where you want to be?" and "where you are?" right now. - Where you want...
Hi Chelsia, Gap analysis is done on the basis of controls in the ISO27001 code of practice.. The process owners are interviewed. All the controls are discussed...
GAP is the difference between what should be and what is (presently) Arithmetically, GAP = A(what should be) -- B (what is now). Analysing this to find out...
Dear Sir/Madam Let me introduce myself. My name is Erica.I am an Industrial Engineering college student. I have been writing my final paper about Training...
Hi Erica, Yes you are right. Firstly populate the skill sets requried for all the identified functions or designations. document the desired level for each...
By determining the competencies you will undoubtedly discover the gaps. That is more of an Audit view. You can create a proactive TNA Process by creating RACI...
Hi Chelsia, For conducting a Gap Analysis, u may prepare questionnaires based on the controls present in the ISO 27001 standard and interview the process...
Hi Chelsia, For conducting a Gap Analysis, u may prepare questionnaires based on the controls present in the ISO 27001 standard and interview the process...
To: Erica Febrianti This requirement has its roots in ISO 9001 and has been carried over to ISO 14001 and now ISO 27001. The requirement has a lot of merit and...
Note: forwarded message attached. ... Yahoo! Messenger with Voice. Make PC-to-Phone Calls to the US (and 30+ countries) for 2ΒΆ/min or less. Note: forwarded...
Hi everybody, Need a help from you all. I am doing a ISO27001 assessment for one of the client. If somebody has some document in mapping ISO27001 to SOX then...
hi When you do a GAP analysis (iso27001) the output should exhibit the security weakness ie whether controls are in place or not... questionnaire approach is...
Hi ! Amiya,Pls. see the attached file if it helps. Regards ... ___________________________________________________________ 24 FIFA World Cup tickets to be won...
Hi, I would like to start a thread on the following queries . 1. What is the true value of Risk Analysis for your organization? 2. What are the units which you...
Anup- I believe that the true value of risk analysis lies in helping the organization business managers in take risk based business decisions. This can only be...
ISO 17799:2005 is it 11 sections or 12? The www.ISO.org website shows ISO 17799:2005 as 11 sections, but the "17799.denialinfo.com/whatisiso17799.htm" website...
bala is correct... There are 11 sections in 17799:2005 ... __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has...
Hi, This is a thought which has been plaguing me for quite some time. If an organization wants to implement an ISMS using ISO 27001, this is what you would do....
Anup, I read your mail and to some extent I agree with your concerns. Here's what I think will help you get answers to your question. 1. Read the ISO...
Anup- I may partly agree to your comments:-) First of all, let's take the issue related to the ISO 27001. This helps the organizations in designing their...
Hi Anup, You have raised a very good question. Before i start i would like to give you the background. There is a standard called ISO9001. This is a standard...
Having problems with message search?
Fill out this form to ensure your group is one of the first to be migrated to the new message search system.
